JetBrains YouTrack prior 2020.6.1099 Project information disclosure

entryeditHistoryDiffjsonxmlCTI

A vulnerability was found in JetBrains YouTrack and classified as problematic. This issue affects an unknown function of the component Project Handler. Upgrading to version 2020.6.1099 eliminates this vulnerability.

Field02/04/2021 10:24 AM02/23/2021 12:44 PM
vendorJetBrainsJetBrains
nameYouTrackYouTrack
componentProject HandlerProject Handler
cwe200 (information disclosure)200 (information disclosure)
risk11
cvss3_vuldb_cLL
cvss3_vuldb_iNN
cvss3_vuldb_aNN
cvss3_vuldb_rlOO
cvss3_vuldb_rcCC
urlhttps://blog.jetbrains.com/blog/2021/02/03/jetbrains-security-bulletin-q4-2020/https://blog.jetbrains.com/blog/2021/02/03/jetbrains-security-bulletin-q4-2020/
nameUpgradeUpgrade
upgrade_version2020.6.10992020.6.1099
cveCVE-2021-25771CVE-2021-25771
date1612393200 (02/04/2021)1612393200 (02/04/2021)
cvss2_vuldb_ciPP
cvss2_vuldb_iiNN
cvss2_vuldb_aiNN
cvss2_vuldb_rcCC
cvss2_vuldb_rlOFOF
cvss2_vuldb_avAA
cvss2_vuldb_acMM
cvss2_vuldb_auSS
cvss2_vuldb_eNDND
cvss3_vuldb_avAA
cvss3_vuldb_acLL
cvss3_vuldb_prLL
cvss3_vuldb_uiNN
cvss3_vuldb_sUU
cvss3_vuldb_eXX
cvss2_vuldb_basescore2.32.3
cvss2_vuldb_tempscore2.32.0
cvss3_vuldb_basescore3.53.5
cvss3_vuldb_tempscore3.53.4
cvss3_meta_basescore3.53.5
cvss3_meta_tempscore3.53.4
price_0day$0-$5k$0-$5k
cve_assigned1611183600
cve_nvd_summaryIn JetBrains YouTrack before 2020.6.1099, project information could be potentially disclosed.

Want to stay up to date on a daily basis?

Enable the mail alert feature now!